This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/6JxXQsPP5HeOd-zrinJyzOvxbvk.roa File: 6JxXQsPP5HeOd-zrinJyzOvxbvk.roa (raw, json) Hash identifier: avnYdM5iKLHNYRmn2VZGG+0Rulxb30BrgSNse/s1Stw= Subject key identifier: E8:9C:57:42:C3:CF:E4:77:8E:77:EC:EB:8A:72:72:CC:EB:F1:6E:F9 Certificate issuer: /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Certificate serial: 019B7EA6AE5FBFDA571EDB9C834069B87B29 Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/6JxXQsPP5HeOd-zrinJyzOvxbvk.roa Signing time: Fri 02 Jan 2026 12:20:11 +0000 ROA not before: Fri 02 Jan 2026 12:20:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3329 IP address blocks: 2a01:830::/32 maxlen: 48 2a01:831::/32 maxlen: 32 2a01:8c8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:ae:5f:bf:da:57:1e:db:9c:83:40:69:b8:7b:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Validity Not Before: Jan 2 12:20:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e89c5742c3cfe4778e77eceb8a7272ccebf16ef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:da:a5:70:e0:cc:ab:43:fb:cb:a0:3c:ca:4d: b4:1c:6e:28:42:a8:b4:06:6f:b3:ec:39:dc:99:cc: 47:08:7a:5d:94:12:47:99:d3:bd:57:d6:25:e8:38: 32:cf:d5:85:42:dc:47:ff:3a:d4:4c:18:ea:43:30: 82:01:e2:20:3a:87:62:fe:b4:b4:a5:0b:6d:ff:6d: 1c:b5:95:9f:cd:90:1a:26:a7:5c:52:ef:1d:25:d2: 6e:a0:42:54:f0:a1:45:00:c9:c3:6f:2e:6d:87:41: 98:f5:15:42:ac:4b:4e:8e:14:f7:6b:78:e6:0e:cc: 2f:a3:c5:31:99:73:33:a3:88:a6:36:77:1f:65:52: 67:69:80:5a:f0:bc:b4:f9:30:21:22:40:dd:40:54: fb:ac:c9:71:52:bb:80:39:5f:74:f4:d4:65:56:d2: a1:cd:cf:64:e4:f2:bc:3c:fe:4c:dc:77:5a:f0:7a: 26:2b:f9:ad:69:27:c4:03:4e:7f:ef:a8:9d:0a:66: 30:ee:c4:08:ea:98:89:02:a2:67:0e:92:2d:ac:79: e7:4e:68:40:31:95:eb:94:76:07:14:23:a3:30:de: ab:49:3c:03:6b:95:5a:2a:a4:04:3a:1a:da:9a:1c: 44:52:8f:60:99:c8:ec:02:7b:2a:26:b9:a6:ae:b1: e6:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:9C:57:42:C3:CF:E4:77:8E:77:EC:EB:8A:72:72:CC:EB:F1:6E:F9 X509v3 Authority Key Identifier: keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/6JxXQsPP5HeOd-zrinJyzOvxbvk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:830::/31 2a01:8c8::/32 Signature Algorithm: sha256WithRSAEncryption 44:f0:c8:88:fd:ef:cb:98:2d:f9:04:84:d7:42:13:83:a3:1e: 8b:bd:ca:e4:14:0f:f1:9e:eb:34:23:24:69:bf:d7:e2:4f:fe: 41:fb:7b:c6:4e:4b:d6:e9:6c:88:1e:6c:56:75:30:fe:49:19: 00:3a:29:c5:a8:6d:80:09:7f:5f:e5:72:07:41:8a:14:f9:e7: 60:45:23:70:6a:88:21:3b:5b:6c:5d:24:8c:3a:99:0f:48:15: e2:75:5e:19:42:18:2d:20:a4:65:11:bc:50:57:51:f0:a4:f4: cd:83:ff:5f:d9:3d:83:a5:c1:8f:8b:44:3f:11:f5:d3:5f:31: ab:35:a5:04:90:60:b8:74:be:85:50:d7:10:c7:28:6e:a4:63: c8:ba:e6:b5:53:86:28:d7:7e:d5:3e:b8:d4:69:56:82:66:30: 7e:11:7d:b7:67:71:60:b0:a5:2e:4e:84:db:0a:7c:bc:c4:be: 2d:27:38:01:a9:8c:a9:ba:3f:aa:88:5d:f9:63:83:d5:47:7f: 5e:5a:f5:14:27:e9:0c:9e:40:a7:44:4e:dd:ac:52:8a:73:ab: 8e:cd:45:08:cf:9a:47:0c:9f:c9:43:b1:5a:e9:02:a6:09:9f: 96:a6:1c:62:f0:12:45:eb:1a:18:fc:8c:83:b5:58:f0:22:1f: 26:7f:77:e0 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt+pq5fv9pXHtucg0BpuHspMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYTVkOTk4NjNkYjJlNDliNDRmNmMzMjRlYjA0Mzg4ZmM3 NTE1ZDIwHhcNMjYwMTAyMTIyMDExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlODljNTc0MmMzY2ZlNDc3OGU3N2VjZWI4YTcyNzJjY2ViZjE2ZWY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA09qlcODMq0P7y6A8yk20HG4oQqi0 Bm+z7DncmcxHCHpdlBJHmdO9V9Yl6Dgyz9WFQtxH/zrUTBjqQzCCAeIgOodi/rS0 pQtt/20ctZWfzZAaJqdcUu8dJdJuoEJU8KFFAMnDby5th0GY9RVCrEtOjhT3a3jm Dswvo8UxmXMzo4imNncfZVJnaYBa8Ly0+TAhIkDdQFT7rMlxUruAOV909NRlVtKh zc9k5PK8PP5M3Hda8HomK/mtaSfEA05/76idCmYw7sQI6piJAqJnDpItrHnnTmhA MZXrlHYHFCOjMN6rSTwDa5VaKqQEOhramhxEUo9gmcjsAnsqJrmmrrHmCQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFOicV0LDz+R3jnfs64pycszr8W75MB8GA1UdIwQY MBaAFLOl2Zhj2y5JtE9sMk6wQ4j8dRXSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAt ZWVjNWQ1MGVmYTk0LzEvNkp4WFFzUFA1SGVPZC16cmluSnl6T3Z4YnZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAtZWVjNWQ1MGVmYTk0 LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUBKgEIMAMF ACoBCMgwDQYJKoZIhvcNAQELBQADggEBAETwyIj978uYLfkEhNdCE4OjHou9yuQU D/Ge6zQjJGm/1+JP/kH7e8ZOS9bpbIgebFZ1MP5JGQA6KcWobYAJf1/lcgdBihT5 52BFI3BqiCE7W2xdJIw6mQ9IFeJ1XhlCGC0gpGURvFBXUfCk9M2D/1/ZPYOlwY+L RD8R9dNfMas1pQSQYLh0voVQ1xDHKG6kY8i65rVThijXftU+uNRpVoJmMH4Rfbdn cWCwpS5OhNsKfLzEvi0nOAGpjKm6P6qIXfljg9VHf15a9RQn6QyeQKdETt2sUopz q47NRQjPmkcMn8lDsVrpAqYJn5amHGLwEkXrGhj8jIO1WPAiHyZ/d+A= -----END CERTIFICATE-----Generated at Mon Jan 26 01:15:48 2026 by rpki-client